DC Field | Value | Language |
---|---|---|
dc.contributor.advisor | Shin, Seung Won | - |
dc.contributor.advisor | 신승원 | - |
dc.contributor.author | Lee, Seung-Soo | - |
dc.contributor.author | 이승수 | - |
dc.date.accessioned | 2017-03-29T02:41:21Z | - |
dc.date.available | 2017-03-29T02:41:21Z | - |
dc.date.issued | 2016 | - |
dc.identifier.uri | http://library.kaist.ac.kr/search/detail/view.do?bibCtrlNo=649706&flag=dissertation | en_US |
dc.identifier.uri | http://hdl.handle.net/10203/221950 | - |
dc.description | 학위논문(석사) - 한국과학기술원 : 정보보호대학원, 2016.2 ,[v, 42 p. :] | - |
dc.description.abstract | Developing a systematic understanding of the attack surface of emergent networks, such as software defined networks (SDNs), is necessary and arguably the starting point toward making it more secure. Prior studies have largely relied on ad-hoc empirical methods to evaluate the security of various SDN elements from different perspectives. However, they have stopped short of converging on a systematic methodology or developing automated systems to rigorously test for security flaws in SDNs. Thus conducting security assessment of new SDN software remains a non-replicable and unregimented process. This paper makes the case for automating and standardizing the vulnerability identification process in SDNs. As a first step, we develop a penetration testing tool, POSEIDON, that reinstantiates published SDN attacks in diverse test environments. Furthermore, we enhance our tool with a fuzzing module to potentially detect other unknown vulnerabilities. In our evaluation, POSEIDON successfully reproduced 20 known attack scenarios, across diverse SDN controller environments, and also discovered 7 novel SDN application mislead attacks. | - |
dc.language | eng | - |
dc.publisher | 한국과학기술원 | - |
dc.subject | Software-defined networks | - |
dc.subject | security | - |
dc.subject | networking | - |
dc.subject | penetration tool | - |
dc.subject | fuzzing | - |
dc.subject | 소프트웨어 정의 네트워크 | - |
dc.subject | 보안 | - |
dc.subject | 네트워킹 | - |
dc.subject | 침투도구 | - |
dc.subject | 퍼징 | - |
dc.title | Studying on a penetration testing framework for software-defined networks | - |
dc.title.alternative | 안전한 소프트웨어 정의 네트워크 환경을 구축하기 위한 보안 침투 도구 연구 | - |
dc.type | Thesis(Master) | - |
dc.identifier.CNRN | 325007 | - |
dc.description.department | 한국과학기술원 :정보보호대학원, | - |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.